Hi Arbitrum community,
CertiK is excited to apply for a position on the Arbitrum Security Council. As the largest cybersecurity company in crypto, our mission is to secure the Web3 world, and we believe Arbitrum represents one of the most critical pieces of infrastructure in the ecosystem.
About CertiK
CertiK is the largest blockchain security auditor, founded in 2018 by professors from Yale University and Columbia University. We have secured over $600 billion in digital assets and worked with nearly 4,900 clients globally.
Our clients & audits span major chains like BNB Chain, Polygon, Aptos, TON, SEI, and the Ethereum Foundation, leading exchanges including Binance, OKX, and Crypto.com, and prominent DeFi protocols such as Venus, PancakeSwap, Ondo, and 1inch. CertiK is backed by top-tier investors including Sequoia, Tiger Global, Goldman Sachs, Binance, Coinbase Ventures, and SoftBank.
Why CertiK
CertiK brings unparalleled technical expertise in securing critical blockchain infrastructure. We have reported 4,000+ security incidents, identified 115,000+ code vulnerabilities across our audit engagements and have a proven track record of responsible security disclosures across the entire Web3 stack.
Our notable achievements include finding multiple critical bugs in blockchains like Sui and Aptos, uncovering a $5M security vulnerability in Wormhole bridge on Aptos, identifying RCE vulnerabilities in major crypto wallets including WalletConnect and OKX Wallet, discovering a significant vulnerability in CosmWasm, finding a vulnerability in Ledger, and discovering multiple vulnerabilities that were officially acknowledged by Apple and Samsung.
Beyond individual discoveries, CertiK operates a dedicated Incident Response Team (IRT) that provides round-the-clock monitoring and emergency intervention capabilities. Our IRT has successfully frozen funds during active exploits and helped countless protocols in Warrooms. Our monitoring systems have identified over 300 confirmed on-chain exploit events in the past year alone.
Additionally, our comprehensive security platform includes Skynet, a one-stop security platform for Web3 users integrating security analysis, due diligence, and data insights where over 1.8M monthly users can assess over 18,000 projects, SkyInsights for transaction monitoring and compliance, CertiK Node securing $1.2 billion across 12 blockchains, and Penetration testing services that proactively identify vulnerabilities before they can be exploited.
Having secured major exchanges, L1/L2 networks, and DeFi protocols across all blockchains, we understand the complexities of protocol upgrades and operating critical infrastructure at scale.
Representative: Dickson Wu
Dickson Wu will serve as CertiK’s primary representative. He previously co-founded Skylock, building hack frontrunning, and has direct experience with emergency response in DeFi environments. Dickson is a member of The Security Alliance (SEAL) and contributes to the SEAL Whitehat Safe Harbor Agreement. He is based in North American timezones and will be supported by CertiK’s global Incident Response Team and security specialists to ensure comprehensive coverage for all Security Council responsibilities.
Our Commitment
If elected, we commit to:
Immediate availability and technical review during emergencies. As a global team with operations across multiple timezones, we are always available to provide support during critical moments. Our IRT operates around the clock and Dickson will be ready to act at all times to ensure rapid response. Our expert security engineers and auditors can provide independent technical analysis for emergency Security Council decisions, leveraging our extensive experience auditing similar protocols.
Transparent communication with the DAO during critical incidents. We understand the importance of clear, timely communication with the community during security events and commit to providing regular updates and explanations of our decision-making process.
Proactive threat monitoring and chain-level security expertise. Our monitoring infrastructure will help identify potential threats before they materialize, and our experience discovering vulnerabilities in major L1/L2 blockchains makes us uniquely qualified to assess risks and validate emergency upgrades.
CertiK’s mission is to secure the Web3 world. As stewards of one of Ethereum’s most critical scaling solutions, we’re ready to bring our institutional expertise and operational readiness to protect Arbitrum’s continued growth.
Disclosures:
CertiK provides security services across the Web3 ecosystem, including other Layer 2 solutions and blockchain networks. We maintain strict credible neutrality to ensure no conflicts of interest.
Thank you for your consideration and we welcome any feedback or questions.
Best,
The CertiK Team